VYPR

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

ClassStableLikelihood: High

Description

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-10 · CAPEC-100 · CAPEC-123 · CAPEC-14 · CAPEC-24 · CAPEC-42 · CAPEC-44 · CAPEC-45 · CAPEC-46 · CAPEC-47 · CAPEC-8 · CAPEC-9

CVEs mapped to this weakness (10,979)

page 29 of 549
  • CVE-2017-7062CriJul 20, 2017
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "Contacts" component. A buffer overflow allows remote attackers to execute…

  • CVE-2017-11420CriJul 18, 2017
    risk 0.64cvss 9.8epss 0.06

    Stack-based buffer overflow in ASUS_Discovery.c in networkmap in Asuswrt-Merlin firmware for ASUS devices and ASUS firmware for ASUS RT-AC5300, RT_AC1900P, RT-AC68U, RT-AC68P, RT-AC88U, RT-AC66U, RT-AC66U_B1, RT-AC58U, RT-AC56U, RT-AC55U, RT-AC52U, RT-AC51U, RT-N18U, RT-N66U,…

  • CVE-2017-11362CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.03

    In PHP 7.x before 7.0.21 and 7.1.x before 7.1.7, ext/intl/msgformat/msgformat_parse.c does not restrict the locale length, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact…

  • CVE-2017-1000075CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.02

    Creolabs Gravity version 1.0 is vulnerable to a stack overflow in the memcmp function

  • CVE-2017-1000074CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.02

    Creolabs Gravity version 1.0 is vulnerable to a stack overflow in the string_repeat() function.

  • CVE-2017-1000073CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.03

    Creolabs Gravity version 1.0 is vulnerable to a heap overflow in an undisclosed component that can result in arbitrary code execution.

  • CVE-2017-1000044CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.02

    gtk-vnc 0.4.2 and older doesn't check framebuffer boundaries correctly when updating framebuffer which may lead to memory corruption when rendering

  • CVE-2017-9629CriJul 7, 2017
    risk 0.64cvss 9.8epss 0.10

    A Stack-Based Buffer Overflow issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The stack-based buffer overflow vulnerability has been identified, which may allow a remote attacker to execute arbitrary code in the context…

  • CVE-2017-10684CriJun 29, 2017
    risk 0.64cvss 9.8epss 0.05

    In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

  • CVE-2017-3096CriJun 20, 2017
    risk 0.64cvss 9.8epss 0.06

    Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the character code mapping module. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-3095CriJun 20, 2017
    risk 0.64cvss 9.8epss 0.06

    Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF parsing engine. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-3094CriJun 20, 2017
    risk 0.64cvss 9.8epss 0.06

    Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF processing engine. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-3093CriJun 20, 2017
    risk 0.64cvss 9.8epss 0.06

    Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the bitmap representation module. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-3089CriJun 20, 2017
    risk 0.64cvss 9.8epss 0.06

    Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the PDF imaging model. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-3086CriJun 20, 2017
    risk 0.64cvss 9.8epss 0.07

    Adobe Shockwave versions 12.2.8.198 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-3079CriJun 20, 2017
    risk 0.64cvss 9.8epss 0.07

    Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the internal representation of raster data. Successful exploitation could lead to arbitrary code execution.

  • CVE-2014-9984CriJun 12, 2017
    risk 0.64cvss 9.8epss 0.04

    nscd in the GNU C Library (aka glibc or libc6) before version 2.20 does not correctly compute the size of an internal buffer when processing netgroup requests, possibly leading to an nscd daemon crash or code execution as the user running nscd.

  • CVE-2017-4907CriJun 8, 2017
    risk 0.64cvss 9.8epss 0.04

    VMware Unified Access Gateway (2.5.x, 2.7.x, 2.8.x prior to 2.8.1) and Horizon View (7.x prior to 7.1.0, 6.x prior to 6.2.4) contain a heap buffer-overflow vulnerability which may allow a remote attacker to execute code on the security gateway.

  • CVE-2017-9433CriJun 5, 2017
    risk 0.64cvss 9.8epss 0.02

    Document Liberation Project libmwaw before 2017-04-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the MsWrd1Parser::readFootnoteCorrespondance function in lib/MsWrd1Parser.cxx.

  • CVE-2017-9192CriMay 23, 2017
    risk 0.64cvss 9.8epss 0.02

    libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-tga.c:528:7.